Software security consultant and author of the "Web Security Testing Cookbook. Which I will shamelessly promote whenever related topics come up on Stack Overflow (but never without linking to a free preview or copying relevant text)."